Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.0.13, Flowise exposes an HTTP Node in AgentFlow and Chatflow…

Flowise, a drag & drop UI for building customized large language model flows, contains a Server-Side Request Forgery (SSRF) vulnerability in versions prior to 3.0.13. The vulnerability exists in the HTTP Node component of AgentFlow and Chatflow features, which performs server-side HTTP requests using user-controlled URLs without proper validation. Attackers can exploit this to force the Flowise server to make requests to internal network resources including private IP ranges (RFC 1918), localhost, and cloud metadata endpoints. This allows unauthorized access to internal systems that are not accessible from the public internet. The vulnerability has been patched in version 3.0.13.